issues
search
oauth-wg
/
oauth-first-party-apps
https://datatracker.ietf.org/doc/html/draft-parecki-oauth-first-party-apps
Other
11
stars
8
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Motivation
#63
yaronf
opened
6 months ago
0
Endpoint name
#62
yaronf
opened
6 months ago
0
Typo fix
#61
PieterKas
closed
7 months ago
0
Update draft-parecki-oauth-first-party-apps.md
#60
gffletch
closed
8 months ago
0
Update section on authorization code binding
#59
PieterKas
closed
8 months ago
4
Removed need for new ash claim.
#58
PieterKas
closed
8 months ago
0
Require device binding for auth sessions
#57
PieterKas
closed
8 months ago
0
Prohibit moving sessions across devices
#56
PieterKas
closed
8 months ago
3
Support authorization challenge endpoint on a different domain than the AS ?
#55
gffletch
closed
3 months ago
1
Write draft of POST Request Framework
#54
aaronpk
closed
8 months ago
1
Update First-Party Apps to extend POST Request Framework
#53
aaronpk
closed
8 months ago
1
Write FIDO extension to First-Party Apps
#52
aaronpk
opened
11 months ago
1
Send email to list about Device Flow / PAR / First Party apps commonality
#51
aaronpk
closed
8 months ago
1
content of follow-up requests to the challenge endpoint
#50
bc-pi
closed
8 months ago
1
no charset w/ JSON media type
#49
bc-pi
closed
10 months ago
0
DPoP Thoughts
#48
bc-pi
closed
8 months ago
2
DPoP Authorization Code Binding
#47
bc-pi
closed
8 months ago
4
PAR response w/ request_uri and PKCE doesn't quite work
#46
bc-pi
closed
8 months ago
5
error code vs error code
#45
bc-pi
closed
9 months ago
2
random stringo
#44
bc-pi
closed
11 months ago
2
Appendix A.2
#43
mattjm
closed
8 months ago
1
minor grammar/typo suggestions
#42
mattjm
closed
11 months ago
0
Client authentication requirements for authorization challenge endpoint
#41
aaronpk
closed
1 year ago
0
Add passkey example
#40
aaronpk
closed
1 year ago
0
Updates for issues #31, #33, #36
#39
gffletch
closed
1 year ago
0
Added support for redirecting to the web
#38
PieterKas
closed
1 year ago
1
Add user experience considerations
#37
PieterKas
closed
8 months ago
3
Add security consideration discouraging use of this spec in SPAs
#36
aaronpk
closed
1 year ago
2
Step-Up
#35
dteleguin
closed
1 year ago
5
Update references to DPoP (RFC 9449)
#34
aaronpk
closed
1 year ago
0
Client Authentication
#33
PieterKas
closed
1 year ago
4
Describe why not to return access token directly
#32
PieterKas
closed
1 year ago
0
Content Type
#31
PieterKas
closed
1 year ago
1
Add shelling out to the browser as a error code
#30
PieterKas
closed
1 year ago
2
First Party Native Apps in Browsers
#29
PieterKas
closed
1 year ago
4
OAuth FiPNA Enhancements
#28
corriganjeff
closed
1 year ago
0
Better name for "device session"
#27
aaronpk
closed
1 year ago
2
Added worked examples showing examples of the main use cases
#26
PieterKas
closed
1 year ago
0
Update reference to Native SSO
#25
aaronpk
closed
1 year ago
0
`auth_session` DPoP binding
#24
aaronpk
closed
1 year ago
3
Document token request
#23
aaronpk
closed
1 year ago
0
Write Introduction
#22
PieterKas
closed
1 year ago
1
Expand introduction
#21
aaronpk
closed
1 year ago
0
Add in user scenarios
#20
PieterKas
closed
1 year ago
1
Addressing issues #2, #3 and #10.
#19
gffletch
closed
1 year ago
0
Security Considerations: How to use DPoP for Native Apps
#18
PieterKas
closed
1 year ago
0
Describe how DPoP works with this spec
#17
aaronpk
closed
1 year ago
1
Web redirect options
#16
aaronpk
closed
1 year ago
3
Include non-normative examples in the Appendix
#15
PieterKas
closed
1 year ago
1
Need a non-normative example showing how the AS extends the spec to make it all work
#14
gffletch
closed
1 year ago
2
Previous
Next